CVE-2002-1084

2002-08-3104:00:00

mitre

www.cve.org

AI Score

6.5

Confidence

Low

EPSS

0.01

Percentile

83.4%

JSON

The VerifyLogin function in ezContents 1.41 and earlier does not properly halt program execution if a user fails to log in properly, which allows remote attackers to modify and view restricted information via HTTP POST requests.

References

archives.neohapsis.com/archives/vulnwatch/2002-q3/0040.html

online.securityfocus.com/archive/1/284229

www.iss.net/security_center/static/9711.php